For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

Sumanta_88744's avatar
Sumanta_88744
Icon for Cirrus rankCirrus
Jul 20, 2016

F5 LTM hardening (11.6.0 HF 5.0.429)

Hi Experts   How to harden the below version to fix the issues after VAPT ?   Product BIG-IP 2000 LTM   Version 11.6.0   Build 5.0.429   Edition Hotfix HF5   1) Op...
application delivery
BIG-IP
security
Chris_Grant's avatar
Chris_Grant
Icon for Employee rankEmployee
Aug 01, 2016

You should ideally always be on the latest hotfix. Having said that 11.6.0 HF5 is only vulnerable to the slow loris attack on the management plane. It is not vulnerable to either of the other two CVEs. Make sure that your management interface is not accessible from outside your organization, and ideally not accessible outside a dedicated management network. Upgrading to the latest hotfix (or even the latest code revision) will not change this.

 

11.6.0 HF5 is not vulnerable to CVE-2012-0814 or CVE-2008-5161.